This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/c3e3ad-51eb-4e96-98b2-0b1d09498534/1/nzmWaGPYL6i9HKOTaQX6HiSpoL8.mft File: nzmWaGPYL6i9HKOTaQX6HiSpoL8.mft (raw, json) Hash identifier: /hPizGLi4Qd/DKAypVEkI+gp+6pWk/tRSDL6KqYB64w= Subject key identifier: 6E:DA:7E:B2:15:DB:B8:8A:BD:88:DA:2C:79:2D:48:60:8D:AD:A9:0B Authority key identifier: 9F:39:96:68:63:D8:2F:A8:BD:1C:A3:93:69:05:FA:1E:24:A9:A0:BF Certificate issuer: /CN=9f39966863d82fa8bd1ca3936905fa1e24a9a0bf Certificate serial: 019C41D8AF589C934467B3A15583BE6A6295 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nzmWaGPYL6i9HKOTaQX6HiSpoL8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/c3e3ad-51eb-4e96-98b2-0b1d09498534/1/nzmWaGPYL6i9HKOTaQX6HiSpoL8.mft Manifest number: 179D Signing time: Mon 09 Feb 2026 10:00:45 +0000 Manifest this update: Mon 09 Feb 2026 10:00:45 +0000 Manifest next update: Tue 10 Feb 2026 10:00:45 +0000 Files and hashes: 1: nzmWaGPYL6i9HKOTaQX6HiSpoL8.crl (hash: VuIDRM0pvrNUXWLGHUZWMbGhmeLoIfJ6HgxQef1sAbo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/c3e3ad-51eb-4e96-98b2-0b1d09498534/1/nzmWaGPYL6i9HKOTaQX6HiSpoL8.crl rsync://rpki.ripe.net/repository/DEFAULT/5e/c3e3ad-51eb-4e96-98b2-0b1d09498534/1/nzmWaGPYL6i9HKOTaQX6HiSpoL8.mft rsync://rpki.ripe.net/repository/DEFAULT/nzmWaGPYL6i9HKOTaQX6HiSpoL8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:af:58:9c:93:44:67:b3:a1:55:83:be:6a:62:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9f39966863d82fa8bd1ca3936905fa1e24a9a0bf Validity Not Before: Feb 9 10:00:45 2026 GMT Not After : Feb 10 10:00:45 2026 GMT Subject: CN=6eda7eb215dbb88abd88da2c792d48608dada90b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:81:47:77:f3:d0:81:9b:0f:7f:3b:a5:aa:e7: 0b:d1:59:b0:79:73:ce:dd:6b:3b:b7:c8:9d:99:81: 5e:cb:a5:18:d9:58:33:8a:66:91:2c:13:08:bb:e2: 6c:f2:2c:2e:39:dd:53:88:c0:9f:c9:4b:73:63:c1: 73:c2:ba:8e:89:de:6d:ca:de:41:27:7a:88:1c:18: f1:e0:da:55:4e:b4:78:7f:36:cd:7e:81:dd:d8:89: 77:36:77:13:5b:c8:10:e2:27:ff:c9:f8:c4:40:71: 12:e0:7c:41:95:7e:4f:04:48:68:28:38:0c:74:cf: 5d:fb:1d:e7:70:d6:14:e7:b2:18:22:a1:fb:80:da: 06:68:41:6d:b8:d9:3d:2a:3f:56:98:bb:90:48:f8: 29:91:60:d5:28:17:e0:cd:e2:0e:a9:8a:b9:65:a1: d8:63:4f:99:59:a4:05:ed:42:58:6b:45:13:03:6c: f5:c4:46:54:7d:aa:8c:2f:0c:27:81:6b:d3:b1:a0: 95:36:24:f9:fc:78:1e:d5:69:44:0c:05:83:c1:4a: 0c:f9:80:a2:cb:17:6a:40:0b:fe:81:71:95:ec:d1: 52:55:38:b7:53:bd:2c:38:3f:08:c9:07:69:9b:64: 88:06:ba:0e:07:b1:e3:20:b6:29:4e:2f:14:5c:4f: bd:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:DA:7E:B2:15:DB:B8:8A:BD:88:DA:2C:79:2D:48:60:8D:AD:A9:0B X509v3 Authority Key Identifier: keyid:9F:39:96:68:63:D8:2F:A8:BD:1C:A3:93:69:05:FA:1E:24:A9:A0:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzmWaGPYL6i9HKOTaQX6HiSpoL8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/c3e3ad-51eb-4e96-98b2-0b1d09498534/1/nzmWaGPYL6i9HKOTaQX6HiSpoL8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/c3e3ad-51eb-4e96-98b2-0b1d09498534/1/nzmWaGPYL6i9HKOTaQX6HiSpoL8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:03:47:72:3a:32:c1:e5:6f:0f:52:46:3d:b8:b9:4f:39:f4: c0:61:3a:cd:77:a8:c9:e8:58:35:a8:ca:bd:e1:8d:6d:48:82: 7c:90:c1:da:17:4a:e4:c0:43:61:d3:08:5a:13:a5:ba:50:c9: 9f:a1:b1:7e:af:54:1a:76:c1:3e:3a:d7:8d:fc:8e:6b:cd:72: 5f:d0:e8:cf:fd:ee:1b:06:c3:99:24:e6:ea:05:de:84:2c:93: 12:43:a9:70:e2:6f:a6:bd:ad:56:e2:28:47:6f:f5:0d:f6:59: e5:1f:41:4b:47:b6:39:66:a0:f2:c3:91:13:12:a6:fe:82:d3: ec:ef:5d:48:76:7c:20:53:43:44:64:2a:e2:1c:e2:e1:04:45: 6b:f4:b8:a9:05:85:ba:3b:ac:cb:74:3d:8e:a5:b5:ef:17:b2: 38:94:45:47:48:19:3e:de:61:fe:c3:27:62:1f:20:6f:74:e1: 8d:ea:81:db:32:08:92:21:0c:d2:f7:7c:b8:24:32:05:a3:d5: 41:18:ca:b6:00:11:3d:bc:d9:ee:7b:9c:56:db:89:a9:51:67: f1:ef:c6:31:e2:fe:b5:3d:09:ac:d4:ba:1c:91:1e:46:ef:7e: 0d:8b:cb:ed:57:e4:26:c3:38:67:7c:07:67:5d:1b:51:dd:1f: 9d:8d:66:ab -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2K9YnJNEZ7OhVYO+amKVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlmMzk5NjY4NjNkODJmYThiZDFjYTM5MzY5MDVmYTFlMjRh OWEwYmYwHhcNMjYwMjA5MTAwMDQ1WhcNMjYwMjEwMTAwMDQ1WjAzMTEwLwYDVQQD Eyg2ZWRhN2ViMjE1ZGJiODhhYmQ4OGRhMmM3OTJkNDg2MDhkYWRhOTBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtoFHd/PQgZsPfzulqucL0VmweXPO 3Ws7t8idmYFey6UY2VgzimaRLBMIu+Js8iwuOd1TiMCfyUtzY8FzwrqOid5tyt5B J3qIHBjx4NpVTrR4fzbNfoHd2Il3NncTW8gQ4if/yfjEQHES4HxBlX5PBEhoKDgM dM9d+x3ncNYU57IYIqH7gNoGaEFtuNk9Kj9WmLuQSPgpkWDVKBfgzeIOqYq5ZaHY Y0+ZWaQF7UJYa0UTA2z1xEZUfaqMLwwngWvTsaCVNiT5/Hge1WlEDAWDwUoM+YCi yxdqQAv+gXGV7NFSVTi3U70sOD8IyQdpm2SIBroOB7HjILYpTi8UXE+9CQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG7afrIV27iKvYjaLHktSGCNrakLMB8GA1UdIwQY MBaAFJ85lmhj2C+ovRyjk2kF+h4kqaC/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbnptV2FHUFlMNmk5SEtPVGFRWDZIaVNwb0w4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS9jM2UzYWQtNTFlYi00ZTk2LTk4YjIt MGIxZDA5NDk4NTM0LzEvbnptV2FHUFlMNmk5SEtPVGFRWDZIaVNwb0w4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZS9jM2UzYWQtNTFlYi00ZTk2LTk4YjItMGIxZDA5NDk4NTM0 LzEvbnptV2FHUFlMNmk5SEtPVGFRWDZIaVNwb0w4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFQNHcjoy weVvD1JGPbi5Tzn0wGE6zXeoyehYNajKveGNbUiCfJDB2hdK5MBDYdMIWhOlulDJ n6Gxfq9UGnbBPjrXjfyOa81yX9Doz/3uGwbDmSTm6gXehCyTEkOpcOJvpr2tVuIo R2/1DfZZ5R9BS0e2OWag8sORExKm/oLT7O9dSHZ8IFNDRGQq4hzi4QRFa/S4qQWF ujusy3Q9jqW17xeyOJRFR0gZPt5h/sMnYh8gb3ThjeqB2zIIkiEM0vd8uCQyBaPV QRjKtgARPbzZ7nucVtuJqVFn8e/GMeL+tT0JrNS6HJEeRu9+DYvL7VfkJsM4Z3wH Z10bUd0fnY1mqw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:27 2026 by rpki-client